Technical Information
- %TEMP%\ixp000.tmp\cid114~1.exe
- %TEMP%\ixp000.tmp\cid114~2.exe
- %TEMP%\p2xtmp-2932\p2x588.dll
- '69.##.130.219':80
- http://www.bi##op.com/?ci#############
- http://11##938203/Facemoods.exe
- DNS ASK bi##op.com
- ClassName: 'DDEMLMom' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%TEMP%\ixp000.tmp\cid114~1.exe'
- '%WINDIR%\syswow64\rundll32.exe' url.dll,FileProtocolHandler "http://www.bi##op.com/?ci#############"